Security Intelligence
Feed

Real-time CVE tracking, exploit analysis, and vulnerability intelligence curated for security professionals.

85 New today
64,295 Total advisories
Live Monitoring

Daily Security Trends (Last 14 Days)

255
Jun 8
658
Jun 9
351
Jun 10
245
Jun 11
336
Jun 12
60
Jun 13
68
Jun 14
443
Jun 15
630
Jun 16
464
Jun 17
3
Jun 18
352
Jun 19
56
Jun 20
78
Jun 21
Critical
High
Medium
Low

Recent Advisories

Severity ID Title Vendor Product Date Type
MEDIUM 5.3 CVE-2026-12774

BerriAI litellm MCP Server Connection Testing rest_endpoints.py _execute_with_mcp_client server-side request forgery_CVE-2026-12774

A security vulnerability has been detected in BerriAI litellm up to 1.82.2. Affected by this vulnerability is the function _execute_with_mcp_client...

BerriAI litellm 1.82.0 CVE
MEDIUM 6.9 CVE-2026-12773

BerriAI litellm MCP Proxy user_api_key_auth_mcp.py UserAPIKeyAuth improper authentication_CVE-2026-12773

A weakness has been identified in BerriAI litellm up to 1.59.8. Affected is the function UserAPIKeyAuth of the file litellm/proxy/_experimental/mcp...

BerriAI litellm 1.59.0 CVE
MEDIUM 5.3 CVE-2026-12770

BerriAI litellm Admin Key key_management_endpoints.py improper authorization_CVE-2026-12770

A vulnerability was determined in BerriAI litellm up to 1.63.1. The impacted element is an unknown function of the file litellm/proxy/management_en...

BerriAI litellm 1.63.0 CVE
LOW 2.3 CVE-2026-12771

BerriAI litellm M2M JWT user_api_key_auth.py improper authorization_CVE-2026-12771

A vulnerability was identified in BerriAI litellm up to 1.82.2. This affects an unknown function of the file litellm/proxy/auth/user_api_key_auth.p...

BerriAI litellm 1.82.0 CVE
NONE B9CE5CD6-EC89-

ai-goat-ai-vulnerability-exploits-collection_B9CE5CD6-EC89-5FA8-B3CB-408F75A699C5

AI GOAT - AI Vulnerability & Exploits Collection ⚠️ A deliberately-vulnerable test corpus. Every file in this repository is intentionally insecure ...

N/A N/A GITHUBEXPLOIT
LOW 3.7 CVE-2026-56355

CVE-2026-56355_CVE-2026-56355

GNU Savannah Administration Savane through 3.17 uses untrusted data as part of authorization.

GNU Savane 3.14 CVE
NONE EBBC7019-30C8-

Web-Security-Audit-Skill_EBBC7019-30C8-5C4F-A020-88763BC8166B

--- Features - Multi-language support: Automatic identification and scanning of PHP, Java, Python, Go source codes. - 60+ detection rules: Based on...

N/A N/A GITHUBEXPLOIT
MEDIUM 5.3 CVE-2026-56347

AVideo TopMenu Plugin – Stored Cross-Site Scripting via Unescaped Menu Item Fields_CVE-2026-56347

AVideo TopMenu plugin through version 26.0 contains a stored cross-site scripting vulnerability in menu item rendering due to missing output encodi...

WWBN AVideo CVE
MEDIUM 6.9 CVE-2026-56346

AVideo – Unauthenticated PGP Message Decryption via decryptMessage.json.php Endpoint_CVE-2026-56346

AVideo through version 25.0 contains an authentication bypass vulnerability in the decryptMessage.json.php endpoint that allows unauthenticated use...

AVideo AVideo CVE